Getting Started with OAuth 2.0

OAuth 2.0 is the go-to solution for API security, bringing authorization and delegation to modern HTTP APIs. In this course, you'll learn the fundamentals of OAuth, allowing you to architect and implement the right solution for your requirements.
Course info
Rating
(101)
Level
Intermediate
Updated
Sep 14, 2018
Duration
1h 44m
Table of contents
Description
Course info
Rating
(101)
Level
Intermediate
Updated
Sep 14, 2018
Duration
1h 44m
Description

OAuth 2.0 is the go-to solution for API security, bringing authorization and delegation to modern HTTP APIs. In this course, Getting Started with OAuth 2.0, you'll learn the fundamentals of OAuth and why it is preferred over past solutions. First, you'll explore each grant type and flow in detail, looking at their strengths and weaknesses, and when they should be used or not. Next, you'll take a close look at native applications such as mobile apps, and their unique security issues when using OAuth. Finally, you'll learn some common extensions to the OAuth protocols, such as OpenID Connect and the upcoming OAuth device flow. All of this will be covered without using any particular programming language or stack. When you're finished with this course, you will know how to integrate with any OAuth 2 authorization server and architect the right solution for you.

About the author
About the author

Scott Brady is a software developer specializing in in IdentityServer4 and all things Authentication, Identity, OAuth, and OpenID Connect. Scott spends his time helping customers implement Single Sign On solutions, writing blog posts, and building IdentityServer components for Rock Solid Knowledge.

More from the author
ASP.NET Authentication: The Big Picture
Beginner
1h 34m
Sep 5, 2019
ASP.NET Core Identity Deep Dive
Intermediate
2h 31m
Mar 9, 2018
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi everyone, my name is Scott Brady, and welcome to my course, Getting Started with OAuth 2. 0. In this course, we are going to take a look at the OAuth 2 authorization framework and some of the work that's been happening that makes OAuth and its extensions the gold standard for API security. This course is going to be completely programming free, and it's suitable for software developers of any language or stack. We'll be taking a detailed look at API authorization as a whole, including both what OAuth aims to solve and why older methods should no longer be used. We will see OAuth grant types and when each one is suitable for usage and when they are not, how native applications such as mobile apps have their own challenges and solutions, and finally, the future of OAuth, taking a look at some of the upcoming extension specifications and how existing extensions can be used. If you're looking for a course that will allow you to understand and have a fighting chance with any OAuth implementation, then you're in the right place. This course will allow you to talk the talk and architect the right solution for you. I hope you'll join me on this journey to learn OAuth 2 and API authorization with the Getting Started with OAuth 2. 0 course, at Pluralsight.